Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 1 | /* |
Brian O'Connor | a09fe5b | 2017-08-03 21:12:30 -0700 | [diff] [blame] | 2 | * Copyright 2017-present Open Networking Foundation |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 3 | * |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | * you may not use this file except in compliance with the License. |
| 6 | * You may obtain a copy of the License at |
| 7 | * |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | * |
| 10 | * Unless required by applicable law or agreed to in writing, software |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | * See the License for the specific language governing permissions and |
| 14 | * limitations under the License. |
| 15 | */ |
| 16 | package org.onosproject.openstacknetworking.cli; |
| 17 | |
| 18 | import com.fasterxml.jackson.databind.JsonNode; |
| 19 | import com.google.common.base.Strings; |
| 20 | import org.apache.karaf.shell.commands.Argument; |
| 21 | import org.apache.karaf.shell.commands.Command; |
| 22 | import org.onosproject.cli.AbstractShellCommand; |
| 23 | import org.onosproject.openstacknetworking.api.OpenstackNetworkAdminService; |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 24 | import org.onosproject.openstacknetworking.api.OpenstackRouterAdminService; |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 25 | import org.onosproject.openstacknetworking.api.OpenstackSecurityGroupAdminService; |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 26 | import org.openstack4j.api.OSClient; |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 27 | import org.openstack4j.api.client.IOSClientBuilder; |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 28 | import org.openstack4j.api.exceptions.AuthenticationException; |
Jian Li | b43b067 | 2018-04-05 21:48:51 +0900 | [diff] [blame] | 29 | import org.openstack4j.api.types.Facing; |
Jian Li | 1a9e71c | 2018-04-03 19:00:29 +0900 | [diff] [blame] | 30 | import org.openstack4j.core.transport.Config; |
sangho | a0ef13b | 2018-03-09 13:56:39 +0900 | [diff] [blame] | 31 | import org.openstack4j.model.common.Identifier; |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 32 | import org.openstack4j.model.network.IP; |
| 33 | import org.openstack4j.model.network.NetFloatingIP; |
| 34 | import org.openstack4j.model.network.Network; |
| 35 | import org.openstack4j.model.network.Port; |
| 36 | import org.openstack4j.model.network.Router; |
| 37 | import org.openstack4j.model.network.RouterInterface; |
| 38 | import org.openstack4j.model.network.Subnet; |
| 39 | import org.openstack4j.openstack.OSFactory; |
| 40 | import org.openstack4j.openstack.networking.domain.NeutronRouterInterface; |
| 41 | |
Jian Li | 1a9e71c | 2018-04-03 19:00:29 +0900 | [diff] [blame] | 42 | import javax.net.ssl.HostnameVerifier; |
| 43 | import javax.net.ssl.HttpsURLConnection; |
| 44 | import javax.net.ssl.SSLContext; |
| 45 | import javax.net.ssl.TrustManager; |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 46 | import java.io.IOException; |
| 47 | import java.util.List; |
| 48 | import java.util.Objects; |
| 49 | import java.util.stream.Collectors; |
| 50 | |
Jian Li | 1a9e71c | 2018-04-03 19:00:29 +0900 | [diff] [blame] | 51 | import javax.net.ssl.X509TrustManager; |
| 52 | import java.security.cert.X509Certificate; |
| 53 | |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 54 | import static org.openstack4j.core.transport.ObjectMapperSingleton.getContext; |
| 55 | |
| 56 | /** |
| 57 | * Synchronizes OpenStack network states. |
| 58 | */ |
| 59 | @Command(scope = "onos", name = "openstack-sync-states", |
| 60 | description = "Synchronizes all OpenStack network states") |
| 61 | public class OpenstackSyncStateCommand extends AbstractShellCommand { |
| 62 | |
| 63 | @Argument(index = 0, name = "endpoint", description = "OpenStack service endpoint", |
| 64 | required = true, multiValued = false) |
| 65 | private String endpoint = null; |
| 66 | |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 67 | @Argument(index = 1, name = "tenant", description = "OpenStack admin tenant name", |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 68 | required = true, multiValued = false) |
| 69 | private String tenant = null; |
| 70 | |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 71 | @Argument(index = 2, name = "user", description = "OpenStack admin user name", |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 72 | required = true, multiValued = false) |
| 73 | private String user = null; |
| 74 | |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 75 | @Argument(index = 3, name = "password", description = "OpenStack admin user password", |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 76 | required = true, multiValued = false) |
| 77 | private String password = null; |
| 78 | |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 79 | @Argument(index = 4, name = "perspective", description = "OpenStack endpoint perspective", |
| 80 | required = false, multiValued = false) |
| 81 | private String perspective = null; |
| 82 | |
sangho | a0ef13b | 2018-03-09 13:56:39 +0900 | [diff] [blame] | 83 | private static final String DOMAIN_DEFUALT = "default"; |
| 84 | |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 85 | private static final String SECURITY_GROUP_FORMAT = "%-40s%-20s"; |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 86 | private static final String NETWORK_FORMAT = "%-40s%-20s%-20s%-8s"; |
| 87 | private static final String SUBNET_FORMAT = "%-40s%-20s%-20s"; |
| 88 | private static final String PORT_FORMAT = "%-40s%-20s%-20s%-8s"; |
| 89 | private static final String ROUTER_FORMAT = "%-40s%-20s%-20s%-8s"; |
| 90 | private static final String FLOATING_IP_FORMAT = "%-40s%-20s%-20s"; |
| 91 | |
| 92 | private static final String DEVICE_OWNER_GW = "network:router_gateway"; |
| 93 | private static final String DEVICE_OWNER_IFACE = "network:router_interface"; |
| 94 | |
Jian Li | 8769d5b | 2018-03-09 21:55:40 +0900 | [diff] [blame] | 95 | private static final String KEYSTONE_V2 = "v2.0"; |
| 96 | private static final String KEYSTONE_V3 = "v3"; |
| 97 | |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 98 | @Override |
| 99 | protected void execute() { |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 100 | OpenstackSecurityGroupAdminService osSgAdminService = get(OpenstackSecurityGroupAdminService.class); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 101 | OpenstackNetworkAdminService osNetAdminService = get(OpenstackNetworkAdminService.class); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 102 | OpenstackRouterAdminService osRouterAdminService = get(OpenstackRouterAdminService.class); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 103 | |
Jian Li | 8769d5b | 2018-03-09 21:55:40 +0900 | [diff] [blame] | 104 | OSClient osClient; |
sangho | a0ef13b | 2018-03-09 13:56:39 +0900 | [diff] [blame] | 105 | |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 106 | Config config = getSslConfig(); |
Jian Li | 1a9e71c | 2018-04-03 19:00:29 +0900 | [diff] [blame] | 107 | |
Jian Li | 8769d5b | 2018-03-09 21:55:40 +0900 | [diff] [blame] | 108 | try { |
| 109 | if (endpoint != null) { |
| 110 | if (endpoint.contains(KEYSTONE_V2)) { |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 111 | IOSClientBuilder.V2 builder = OSFactory.builderV2() |
Jian Li | 8769d5b | 2018-03-09 21:55:40 +0900 | [diff] [blame] | 112 | .endpoint(this.endpoint) |
| 113 | .tenantName(this.tenant) |
| 114 | .credentials(this.user, this.password) |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 115 | .withConfig(config); |
| 116 | |
| 117 | if (perspective != null) { |
| 118 | builder.perspective(getFacing(perspective)); |
| 119 | } |
| 120 | |
| 121 | osClient = builder.authenticate(); |
Jian Li | 8769d5b | 2018-03-09 21:55:40 +0900 | [diff] [blame] | 122 | } else if (endpoint.contains(KEYSTONE_V3)) { |
| 123 | |
| 124 | Identifier project = Identifier.byName(this.tenant); |
| 125 | Identifier domain = Identifier.byName(DOMAIN_DEFUALT); |
| 126 | |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 127 | IOSClientBuilder.V3 builder = OSFactory.builderV3() |
Jian Li | 8769d5b | 2018-03-09 21:55:40 +0900 | [diff] [blame] | 128 | .endpoint(this.endpoint) |
| 129 | .credentials(this.user, this.password, domain) |
| 130 | .scopeToProject(project, domain) |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 131 | .withConfig(config); |
| 132 | |
| 133 | if (perspective != null) { |
| 134 | builder.perspective(getFacing(perspective)); |
| 135 | } |
| 136 | |
| 137 | osClient = builder.authenticate(); |
Jian Li | 8769d5b | 2018-03-09 21:55:40 +0900 | [diff] [blame] | 138 | } else { |
| 139 | print("Unrecognized keystone version type"); |
| 140 | return; |
| 141 | } |
| 142 | } else { |
| 143 | print("Need to specify a valid endpoint"); |
| 144 | return; |
| 145 | } |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 146 | } catch (AuthenticationException e) { |
| 147 | print("Authentication failed"); |
| 148 | return; |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 149 | } |
| 150 | |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 151 | print("Synchronizing OpenStack security groups"); |
| 152 | print(SECURITY_GROUP_FORMAT, "ID", "Name"); |
| 153 | osClient.networking().securitygroup().list().forEach(osSg -> { |
Jian Li | 2153659 | 2018-03-06 15:10:55 +0900 | [diff] [blame] | 154 | if (osSgAdminService.securityGroup(osSg.getId()) != null) { |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 155 | osSgAdminService.updateSecurityGroup(osSg); |
| 156 | } else { |
| 157 | osSgAdminService.createSecurityGroup(osSg); |
| 158 | } |
| 159 | print(SECURITY_GROUP_FORMAT, osSg.getId(), osSg.getName()); |
| 160 | }); |
| 161 | |
| 162 | print("\nSynchronizing OpenStack networks"); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 163 | print(NETWORK_FORMAT, "ID", "Name", "VNI", "Subnets"); |
| 164 | osClient.networking().network().list().forEach(osNet -> { |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 165 | if (osNetAdminService.network(osNet.getId()) != null) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 166 | osNetAdminService.updateNetwork(osNet); |
| 167 | } else { |
| 168 | osNetAdminService.createNetwork(osNet); |
| 169 | } |
| 170 | printNetwork(osNet); |
| 171 | }); |
| 172 | |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 173 | print("\nSynchronizing OpenStack subnets"); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 174 | print(SUBNET_FORMAT, "ID", "Network", "CIDR"); |
| 175 | osClient.networking().subnet().list().forEach(osSubnet -> { |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 176 | if (osNetAdminService.subnet(osSubnet.getId()) != null) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 177 | osNetAdminService.updateSubnet(osSubnet); |
| 178 | } else { |
| 179 | osNetAdminService.createSubnet(osSubnet); |
| 180 | } |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 181 | printSubnet(osSubnet, osNetAdminService); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 182 | }); |
| 183 | |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 184 | print("\nSynchronizing OpenStack ports"); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 185 | print(PORT_FORMAT, "ID", "Network", "MAC", "Fixed IPs"); |
| 186 | osClient.networking().port().list().forEach(osPort -> { |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 187 | if (osNetAdminService.port(osPort.getId()) != null) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 188 | osNetAdminService.updatePort(osPort); |
| 189 | } else { |
| 190 | osNetAdminService.createPort(osPort); |
| 191 | } |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 192 | printPort(osPort, osNetAdminService); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 193 | }); |
| 194 | |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 195 | print("\nSynchronizing OpenStack routers"); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 196 | print(ROUTER_FORMAT, "ID", "Name", "External", "Internal"); |
| 197 | osClient.networking().router().list().forEach(osRouter -> { |
Jian Li | da7c6cb | 2018-03-06 14:58:54 +0900 | [diff] [blame] | 198 | if (osRouterAdminService.router(osRouter.getId()) != null) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 199 | osRouterAdminService.updateRouter(osRouter); |
| 200 | } else { |
| 201 | osRouterAdminService.createRouter(osRouter); |
| 202 | } |
| 203 | |
| 204 | // FIXME do we need to manage router interfaces separately? |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 205 | osNetAdminService.ports().stream() |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 206 | .filter(osPort -> Objects.equals(osPort.getDeviceId(), osRouter.getId()) && |
| 207 | Objects.equals(osPort.getDeviceOwner(), DEVICE_OWNER_IFACE)) |
Jian Li | da7c6cb | 2018-03-06 14:58:54 +0900 | [diff] [blame] | 208 | .forEach(osPort -> addRouterIface(osPort, osRouterAdminService)); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 209 | |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 210 | printRouter(osRouter, osNetAdminService); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 211 | }); |
| 212 | |
Hyunsun Moon | ae51e73 | 2017-04-25 17:46:21 +0900 | [diff] [blame] | 213 | print("\nSynchronizing OpenStack floating IPs"); |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 214 | print(FLOATING_IP_FORMAT, "ID", "Floating IP", "Fixed IP"); |
| 215 | osClient.networking().floatingip().list().forEach(osFloating -> { |
Jian Li | da7c6cb | 2018-03-06 14:58:54 +0900 | [diff] [blame] | 216 | if (osRouterAdminService.floatingIp(osFloating.getId()) != null) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 217 | osRouterAdminService.updateFloatingIp(osFloating); |
| 218 | } else { |
| 219 | osRouterAdminService.createFloatingIp(osFloating); |
| 220 | } |
| 221 | printFloatingIp(osFloating); |
| 222 | }); |
| 223 | } |
| 224 | |
| 225 | // TODO fix the logic to add router interface to router |
Jian Li | da7c6cb | 2018-03-06 14:58:54 +0900 | [diff] [blame] | 226 | private void addRouterIface(Port osPort, OpenstackRouterAdminService adminService) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 227 | osPort.getFixedIps().forEach(p -> { |
| 228 | JsonNode jsonTree = mapper().createObjectNode() |
| 229 | .put("id", osPort.getDeviceId()) |
| 230 | .put("tenant_id", osPort.getTenantId()) |
| 231 | .put("subnet_id", p.getSubnetId()) |
| 232 | .put("port_id", osPort.getId()); |
| 233 | try { |
| 234 | RouterInterface rIface = getContext(NeutronRouterInterface.class) |
| 235 | .readerFor(NeutronRouterInterface.class) |
| 236 | .readValue(jsonTree); |
Jian Li | da7c6cb | 2018-03-06 14:58:54 +0900 | [diff] [blame] | 237 | if (adminService.routerInterface(rIface.getPortId()) != null) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 238 | adminService.updateRouterInterface(rIface); |
| 239 | } else { |
| 240 | adminService.addRouterInterface(rIface); |
| 241 | } |
| 242 | } catch (IOException ignore) { |
| 243 | } |
| 244 | }); |
| 245 | } |
| 246 | |
| 247 | private void printNetwork(Network osNet) { |
| 248 | final String strNet = String.format(NETWORK_FORMAT, |
| 249 | osNet.getId(), |
| 250 | osNet.getName(), |
| 251 | osNet.getProviderSegID(), |
| 252 | osNet.getSubnets()); |
| 253 | print(strNet); |
| 254 | } |
| 255 | |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 256 | private void printSubnet(Subnet osSubnet, OpenstackNetworkAdminService osNetService) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 257 | final String strSubnet = String.format(SUBNET_FORMAT, |
| 258 | osSubnet.getId(), |
| 259 | osNetService.network(osSubnet.getNetworkId()).getName(), |
| 260 | osSubnet.getCidr()); |
| 261 | print(strSubnet); |
| 262 | } |
| 263 | |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 264 | private void printPort(Port osPort, OpenstackNetworkAdminService osNetService) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 265 | List<String> fixedIps = osPort.getFixedIps().stream() |
| 266 | .map(IP::getIpAddress) |
| 267 | .collect(Collectors.toList()); |
| 268 | final String strPort = String.format(PORT_FORMAT, |
| 269 | osPort.getId(), |
| 270 | osNetService.network(osPort.getNetworkId()).getName(), |
| 271 | osPort.getMacAddress(), |
| 272 | fixedIps.isEmpty() ? "" : fixedIps); |
| 273 | print(strPort); |
| 274 | } |
| 275 | |
Jian Li | 5a15fe6 | 2018-03-06 13:41:20 +0900 | [diff] [blame] | 276 | private void printRouter(Router osRouter, OpenstackNetworkAdminService osNetService) { |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 277 | List<String> externals = osNetService.ports().stream() |
| 278 | .filter(osPort -> Objects.equals(osPort.getDeviceId(), osRouter.getId()) && |
| 279 | Objects.equals(osPort.getDeviceOwner(), DEVICE_OWNER_GW)) |
| 280 | .flatMap(osPort -> osPort.getFixedIps().stream()) |
| 281 | .map(IP::getIpAddress) |
| 282 | .collect(Collectors.toList()); |
| 283 | |
| 284 | List<String> internals = osNetService.ports().stream() |
| 285 | .filter(osPort -> Objects.equals(osPort.getDeviceId(), osRouter.getId()) && |
| 286 | Objects.equals(osPort.getDeviceOwner(), DEVICE_OWNER_IFACE)) |
| 287 | .flatMap(osPort -> osPort.getFixedIps().stream()) |
| 288 | .map(IP::getIpAddress) |
| 289 | .collect(Collectors.toList()); |
| 290 | |
| 291 | final String strRouter = String.format(ROUTER_FORMAT, |
| 292 | osRouter.getId(), |
| 293 | osRouter.getName(), |
| 294 | externals.isEmpty() ? "" : externals, |
| 295 | internals.isEmpty() ? "" : internals); |
| 296 | print(strRouter); |
| 297 | } |
| 298 | |
| 299 | private void printFloatingIp(NetFloatingIP floatingIp) { |
| 300 | final String strFloating = String.format(FLOATING_IP_FORMAT, |
| 301 | floatingIp.getId(), |
daniel park | eeb8e04 | 2018-02-21 14:06:58 +0900 | [diff] [blame] | 302 | floatingIp.getFloatingIpAddress(), |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 303 | Strings.isNullOrEmpty(floatingIp.getFixedIpAddress()) ? |
| 304 | "" : floatingIp.getFixedIpAddress()); |
| 305 | print(strFloating); |
| 306 | } |
Jian Li | b43b067 | 2018-04-05 21:48:51 +0900 | [diff] [blame] | 307 | |
Jian Li | 8cbc3b9 | 2018-04-11 12:21:25 +0900 | [diff] [blame^] | 308 | private Config getSslConfig() { |
| 309 | // we bypass the SSL certification verification for now |
| 310 | // TODO: verify server side SSL using a given certification |
| 311 | Config config = Config.newConfig().withSSLVerificationDisabled(); |
| 312 | |
| 313 | TrustManager[] trustAllCerts = new TrustManager[]{ |
| 314 | new X509TrustManager() { |
| 315 | public X509Certificate[] getAcceptedIssuers() { |
| 316 | return null; |
| 317 | } |
| 318 | |
| 319 | public void checkClientTrusted(X509Certificate[] certs, String authType) { |
| 320 | } |
| 321 | |
| 322 | public void checkServerTrusted(X509Certificate[] certs, String authType) { |
| 323 | } |
| 324 | } |
| 325 | }; |
| 326 | |
| 327 | HostnameVerifier allHostsValid = (hostname, session) -> true; |
| 328 | |
| 329 | try { |
| 330 | SSLContext sc = SSLContext.getInstance("SSL"); |
| 331 | sc.init(null, trustAllCerts, new java.security.SecureRandom()); |
| 332 | HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory()); |
| 333 | HttpsURLConnection.setDefaultHostnameVerifier(allHostsValid); |
| 334 | |
| 335 | config.withSSLContext(sc); |
| 336 | } catch (Exception e) { |
| 337 | print("Failed to access OpenStack service"); |
| 338 | return null; |
| 339 | } |
| 340 | |
| 341 | return config; |
| 342 | } |
| 343 | |
Jian Li | b43b067 | 2018-04-05 21:48:51 +0900 | [diff] [blame] | 344 | private Facing getFacing(String strFacing) { |
| 345 | |
| 346 | if (strFacing == null) { |
| 347 | return null; |
| 348 | } |
| 349 | |
| 350 | switch (strFacing) { |
| 351 | case "public": |
| 352 | return Facing.PUBLIC; |
| 353 | case "admin": |
| 354 | return Facing.ADMIN; |
| 355 | case "internal": |
| 356 | return Facing.INTERNAL; |
| 357 | default: |
| 358 | return null; |
| 359 | } |
| 360 | } |
Hyunsun Moon | c721922 | 2017-03-27 11:05:59 +0900 | [diff] [blame] | 361 | } |